summaryrefslogtreecommitdiffstats
path: root/sys/kern/kern_time.c
diff options
context:
space:
mode:
authorrwatson <rwatson@FreeBSD.org>2002-11-03 02:39:42 +0000
committerrwatson <rwatson@FreeBSD.org>2002-11-03 02:39:42 +0000
commit7537530ad867a2a7e001d6becf47c25f0d0d0b2b (patch)
tree13c3b22f9d0fec4fd6fd7b545bd326917f19839c /sys/kern/kern_time.c
parentc9f86b731d744756f510247ea7f52517bc88c0c1 (diff)
downloadFreeBSD-src-7537530ad867a2a7e001d6becf47c25f0d0d0b2b.zip
FreeBSD-src-7537530ad867a2a7e001d6becf47c25f0d0d0b2b.tar.gz
Introduce mac_check_system_settime(), a MAC check allowing policies to
augment the system policy for changing the system time. Obtained from: TrustedBSD Project Sponsored by: DARPA, Network Associates Laboratories
Diffstat (limited to 'sys/kern/kern_time.c')
-rw-r--r--sys/kern/kern_time.c13
1 files changed, 13 insertions, 0 deletions
diff --git a/sys/kern/kern_time.c b/sys/kern/kern_time.c
index 46645ea..865ee0a 100644
--- a/sys/kern/kern_time.c
+++ b/sys/kern/kern_time.c
@@ -34,6 +34,8 @@
* $FreeBSD$
*/
+#include "opt_mac.h"
+
#include <sys/param.h>
#include <sys/systm.h>
#include <sys/lock.h>
@@ -42,6 +44,7 @@
#include <sys/resourcevar.h>
#include <sys/signalvar.h>
#include <sys/kernel.h>
+#include <sys/mac.h>
#include <sys/systm.h>
#include <sys/sysent.h>
#include <sys/proc.h>
@@ -182,6 +185,11 @@ clock_settime(struct thread *td, struct clock_settime_args *uap)
struct timespec ats;
int error;
+#ifdef MAC
+ error = mac_check_system_settime(td->td_ucred);
+ if (error)
+ return (error);
+#endif
if ((error = suser(td)) != 0)
return (error);
if (SCARG(uap, clock_id) != CLOCK_REALTIME)
@@ -351,6 +359,11 @@ settimeofday(struct thread *td, struct settimeofday_args *uap)
struct timezone atz;
int error = 0;
+#ifdef MAC
+ error = mac_check_system_settime(td->td_ucred);
+ if (error)
+ return (error);
+#endif
if ((error = suser(td)))
return (error);
/* Verify all parameters before changing time. */
OpenPOWER on IntegriCloud